[COSE] Re: The term "PKIX" and C509

[Göran Selander]

From: Phillip Hallam-Baker <i...@hallambaker.com>
Date: Wednesday, 8 October 2025 at 23:19
To: Göran Selander <goran.selan...@ericsson.com>
Cc: Carsten Bormann <c...@tzi.org>, Göran Selander 
<goran.selander=40ericsson....@dmarc.ietf.org>, Tschofenig, Hannes 
<hannes.tschofe...@h-brs.de>, Sipos, Brian J. <brian.si...@jhuapl.edu>, 
cose@ietf.org <cose@ietf.org>
Subject: Re: [COSE] Re: The term "PKIX" and C509



On Wed, Oct 8, 2025 at 4:54 PM Göran Selander 
<goran.selan...@ericsson.com<mailto:goran.selan...@ericsson.com>> wrote:


From: Phillip Hallam-Baker <i...@hallambaker.com<mailto:i...@hallambaker.com>>
Date: Wednesday, 8 October 2025 at 22:16

On Wed, Oct 8, 2025 at 11:58 AM Carsten Bormann 
<c...@tzi.org<mailto:c...@tzi.org>> wrote:
On 2025-10-08, at 17:37, Phillip Hallam-Baker 
<i...@hallambaker.com<mailto:i...@hallambaker.com>> wrote:
>
> When CBOR was originally proposed, we were told it would do everything JSON 
> does.

And you got that.

> What we got was something subtly different so COSE wasn't just JOSE in a 
> different serialization.

COSE wasn’t JOSE because there was an opportunity to fix some JOSE 
idiosyncrasies.
We could have decided against that and try to be bug-for-bug compatible, but 
there really was no point.

> I can't see how PKIX in CBOR is going to turn out any different.

Well, for one thing, C509 is usually way more compact than DER-encoded X.509.
That may matter to you or it may not.

OK, so you have a more efficient encoding for ASN.1, that isn't too much of a 
departure, ASN.1 is designed to allow different encoding rules.

What I was objecting to was the assertion that you can convert a C509 
certificate into an X509. That is only going to work if the tbsCertificate blob 
is encoded in DER for purposes of calculating the signature.

GS: This is essentially C509 "type 1"

So any client software consuming such certs is going to have to implement the 
most knarly part of PKIX.

GS: Some people consider it a feature to align with PKIX.

It is a feature that is going to impose a very high burden on developers, is 
unlikely to work because of issues that are outside their control (i.e. X.509v3 
certs not necessarily using correct DER) and is going to prevent the wider 
effort taking advantage of the opportunity to break backwards compatibility and 
jettison some of the X.500 legacy.

GS: Well, if it doesn’t work then it is hardly going to effectively prevent 
other efforts, nor impose any significant burden on developers.

Göran

_______________________________________________
COSE mailing list -- cose@ietf.org
To unsubscribe send an email to cose-le...@ietf.org